Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/cyfSGutqu9a8TlieonYjI3Th8o8.roa
File: cyfSGutqu9a8TlieonYjI3Th8o8.roa (raw, json)
Hash identifier: W80yHDwJHt+lREj6dG8Y7EquKUI7USlNmAcvvBPCV5I=
Subject key identifier: 73:27:D2:1A:EB:6A:BB:D6:BC:4E:58:9E:A2:76:23:23:74:E1:F2:8F
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018D3B7FDD6935DC474D40F12F1D0151C3A4
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/cyfSGutqu9a8TlieonYjI3Th8o8.roa
Signing time: Wed 24 Jan 2024 12:44:11 +0000
ROA not before: Wed 24 Jan 2024 12:44:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jan 2024 13:10:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3b:7f:dd:69:35:dc:47:4d:40:f1:2f:1d:01:51:c3:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 24 12:44:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7327d21aeb6abbd6bc4e589ea276232374e1f28f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:12:86:d0:a9:dd:e3:26:59:a5:09:95:0a:fa:
84:40:04:1b:ed:a1:50:d3:0f:53:7d:27:8c:f9:c9:
d3:4c:6b:45:37:47:f2:02:c7:04:c2:6b:b9:60:30:
99:a7:11:65:be:00:20:19:5c:fe:8b:3e:8d:be:68:
01:80:4c:1f:e1:1d:1e:c6:e1:65:db:2d:6a:0e:a5:
db:5e:40:44:cc:5a:2e:86:c2:5b:3b:1f:ab:02:bf:
fe:14:60:aa:90:ab:06:88:6f:f9:89:76:f8:91:ea:
15:64:77:2c:34:c3:d4:13:5c:cc:9b:de:9e:b7:bc:
7e:c6:51:75:21:f1:eb:69:64:e0:13:e7:39:d2:19:
65:09:f7:17:6d:ca:47:3b:ca:cc:96:d3:a2:39:52:
e1:9f:9f:43:91:97:55:07:05:45:42:cc:b9:de:b3:
67:b0:5a:d0:b7:5c:0b:56:be:87:ce:63:d2:dd:e1:
ea:f4:88:05:29:36:36:3f:5d:e8:d1:5d:41:dd:50:
50:9d:a6:c0:b9:ec:00:ca:b4:f6:62:84:ab:ef:61:
cc:9e:73:eb:e3:f8:f0:cb:e9:8e:0c:10:ce:e6:43:
f7:cd:ac:e8:c9:22:79:1d:e1:4d:c1:7d:ff:e9:f1:
57:68:0a:c7:62:b5:0f:ba:c8:45:44:85:cb:ac:ab:
53:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:27:D2:1A:EB:6A:BB:D6:BC:4E:58:9E:A2:76:23:23:74:E1:F2:8F
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/cyfSGutqu9a8TlieonYjI3Th8o8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0-84.32.27.255
84.32.46.0/23
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.178.0/23
84.32.214.0/23
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.188.0/22
88.216.212.0/22
Signature Algorithm: sha256WithRSAEncryption
99:66:9b:fa:6c:e6:80:b5:2b:e3:46:64:3a:9e:6d:61:0a:72:
fe:bb:68:c0:3c:92:9d:1a:36:54:45:38:11:5b:14:13:90:25:
b8:60:74:66:fe:11:2c:4d:08:f1:45:c1:9e:ce:4a:c9:c3:89:
32:07:c0:5a:2d:80:b2:44:3f:4c:ad:a6:60:5a:78:43:7e:3e:
77:6f:5a:39:74:63:f0:16:5a:72:ed:d2:57:ea:a7:0e:39:a9:
ad:eb:a4:c9:e0:bc:04:b7:94:e1:fc:7d:4c:5a:63:34:bd:f5:
b6:14:80:8f:fd:93:fd:46:28:0d:45:0b:12:dc:9c:d4:34:ff:
21:34:f6:89:95:84:74:44:43:e1:df:d4:30:dc:c4:69:c4:1f:
9d:24:69:e9:b2:69:5c:0a:14:25:61:85:20:44:83:89:e5:bb:
76:16:de:a8:3b:98:60:97:06:2c:2b:0f:c7:01:39:e7:f0:a3:
c8:c7:35:74:78:05:f7:47:a8:a6:54:2a:fa:ca:3b:35:83:43:
7b:e0:ef:5b:50:4d:ba:15:ff:44:d5:b3:23:78:36:69:35:77:
ba:f2:53:d1:ed:96:0f:76:be:4f:c7:ff:61:f0:00:d1:80:3c:
a0:b6:72:04:59:d5:47:e1:0d:a3:6b:1f:c0:a0:81:7d:04:a2:
4d:24:ae:f7
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgISAY07f91pNdxHTUDxLx0BUcOkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjQwMTI0MTI0NDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzI3ZDIxYWViNmFiYmQ2YmM0ZTU4OWVhMjc2MjMyMzc0ZTFmMjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhKG0Knd4yZZpQmVCvqEQAQb7aFQ
0w9TfSeM+cnTTGtFN0fyAscEwmu5YDCZpxFlvgAgGVz+iz6NvmgBgEwf4R0exuFl
2y1qDqXbXkBEzFouhsJbOx+rAr/+FGCqkKsGiG/5iXb4keoVZHcsNMPUE1zMm96e
t7x+xlF1IfHraWTgE+c50hllCfcXbcpHO8rMltOiOVLhn59DkZdVBwVFQsy53rNn
sFrQt1wLVr6HzmPS3eHq9IgFKTY2P13o0V1B3VBQnabAuewAyrT2YoSr72HMnnPr
4/jwy+mODBDO5kP3zazoySJ5HeFNwX3/6fFXaArHYrUPushFRIXLrKtTFQIDAQAB
o4ICfjCCAnowHQYDVR0OBBYEFHMn0hrrarvWvE5YnqJ2IyN04fKPMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvY3lmU0d1dHF1OWE4VGxpZW9uWWpJM1RoOG84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGTBggrBgEFBQcBBwEB/wSBgzCBgDB+BAIAATB4MAwDBABU
IAcDBABUIAgwDAMEAlQgFAMEAlQgGAMEAVQgLgMEAFQgXwMEAlQglAMEAVQgrgME
AVQgsgMEAVQg1gMEAlQg9AMEAVjYFgMEAVjYLAMEAFjYXTAMAwQBWNiCAwQAWNiE
AwQBWNiGAwQCWNi8AwQCWNjUMA0GCSqGSIb3DQEBCwUAA4IBAQCZZpv6bOaAtSvj
RmQ6nm1hCnL+u2jAPJKdGjZURTgRWxQTkCW4YHRm/hEsTQjxRcGezkrJw4kyB8Ba
LYCyRD9MraZgWnhDfj53b1o5dGPwFlpy7dJX6qcOOamt66TJ4LwEt5Th/H1MWmM0
vfW2FICP/ZP9RigNRQsS3JzUNP8hNPaJlYR0REPh39Qw3MRpxB+dJGnpsmlcChQl
YYUgRIOJ5bt2Ft6oO5hglwYsKw/HATnn8KPIxzV0eAX3R6imVCr6yjs1g0N74O9b
UE26Ff9E1bMjeDZpNXe68lPR7ZYPdr5Px/9h8ADRgDygtnIEWdVH4Q2jax/AoIF9
BKJNJK73
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:29 2024 by rpki-client on console-ams.rpki-client.org